What is the gatekeeper on the Mac and how do I turn it off?

What is the gatekeeper on the Mac?

Where in the past you could still install any program as a Mac user, you have to bypass the “gatekeeper” today. This is a monitoring tool from macOS, the purpose of which is not to spy on its user, but to prevent the user from installing unchecked software.

The gatekeeper of macOS takes care not to install any nonsense. But you can bypass it if you want to take the risk.

In terms of technology, this works in such a way that the installation of a program only works smoothly via the Mac App Store. The reason for this is that Apple first checks these Mac apps - before they appear in the App Store - and makes sure that there is no malware installed there. If they have passed this and other tests, they will be released in the App Store.

If you want to download and install software from the Internet, you get a message from the gatekeeper process, which indicates that the software does not come from the App Store and therefore cannot be installed.

Every Mac user probably already knows the corresponding error message:

“Program XY” cannot be opened because it was not downloaded from the App Store. Your security settings only allow the installation of apps from the App Store.

Turn off gatekeeper and bypass it

Basically, it is praiseworthy that Apple tries to provide more security with such functions. Unfortunately, not all programs are represented in the Mac App Store, so every now and then you have to install software past the gatekeeper.

Deactivate gatekeeper

The first way past the gatekeeper is via the macOS settings. Under System Settings> Security there are various options for “Allow apps to be downloaded from” under the “General” tab.

In the system settings> security you will find the possibility to change gatekeepers warning level below.
In the system settings> security you will find the possibility to change gatekeepers warning level below.

The “Mac App Store” option is activated by default. If you now want to deactivate the gatekeeper completely, change this to "No restrictions". The “Mac App Store and Verified Developers” may offer a good middle ground, because then you can download apps from the Internet, but it will still be checked whether the developer who wrote them also has a developer account with Apple.

If you have told Gatekeeper that apps from certified developers are also okay, then you will find a hint if you want to open the software.
If you have told Gatekeeper that apps from certified developers are also okay, then you will find a hint if you want to open the software.

The verified developer account itself is not a guarantee that you will not be able to catch malware, but the likelihood that it will come from a developer account is much lower.

This is how it looks when the gatekeeper completely prohibits access to a program.
This is how it looks when the gatekeeper completely prohibits access to a program.

If the option to disable gatekeeper is not available ...

I didn't have the option to completely disable Gatekeeper right away. If this is the case for you too, you can activate the option with the following command. You open this for that Port (under Utilities) and enter this:

sudo spctl --master-disable

Now go to System Settings> Security> General and you can also switch off Gatekeeper globally below. However, I would only recommend this if you know what you are doing.

If you want to hide the option again, do this again with the terminal:

sudo spctl --master-enable

Temporarily disable the gatekeeper

If you basically want to keep the gatekeeper active, but as an exception would like to run an app that you downloaded from the Internet, there is an uncomplicated way of doing this. Click the downloaded software with the right mouse button (or hold down the ALT key and press the mouse button) on the program and select "Open" in the menu.

With the right mouse button and the menu item "Open", all programs can be opened - even if the gatekeeper is active.
All programs can be opened with the right mouse button and the menu item “Open” – even if the gatekeeper is active.
The gatekeeper points out the risk again, but after opening it for the first time, there are no further messages.
The gatekeeper points out the risk again, but after opening it for the first time, there are no further messages.

This opens a warning window in which you can confirm that you are aware of the risk and want to start the file anyway. This warning only appears the first time a program is opened.

Did you like the article and did the instructions on the blog help you? Then I would be happy if you the blog via a Steady Membership would support.

20 Responses to “What is Gatekeeper on Mac and how do I turn it off?”

  1. Well here too it doesn't work for me that I can switch off the gatekeeper, despite the correct terminal command. Another tip? The display remains unchanged for me in the system settings. Or does it only run in the HG?

    1. Hello Connie! So with me the display also shows “Allow apps download from: App Store”. Still, I can right-click anything—even if it's not from the App Store or verified developers.

  2. In 10.15.7 the terminal commands work. An “enable” command does not necessarily need it. If you reset the setting in the system settings to one of the two default settings, the settings field will disappear the next time you start the system settings.

    Is there actually a "list" on the computer in which the programs are listed/saved that were smuggled around Gatekeeper by the workaround?

    1. Hello Florian! I think it's all recorded in some logs, but I don't see how you could make such a list. In practice, you would probably have to create these yourself by hand. But I'm not a terminal expert either ...

    1. Hi! Have you tried the terminal command here in the post? That should actually work... If not, I'd have to look for a new way from Ventura onwards.

          1. I entered the command to disable the gatekeeper. Now I was supposed to enter the admin's password (after a key character) but it didn't work. Hm

        1. Thanks for the help🌼.
          But I need the terminal command again. I can't find this one anymore, sorry for the trouble I'm making.

  3. Now I was curious and entered the command to deactivate the gatekeeper. Now I was supposed to enter the admin's password (after a key character) but it didn't work. Hm

    1. Well, then it can only be because the password is wrong. You have to type it in again. Should actually work like this!

  4. It's disabled for me. But apps are still checked and the message appears whether I really want to open the app. So corrosive

    Thanks in advance.

    1. Jen Kleinholz

      Howdy! Yes that's right. If it is switched off, you will still be annoyed with the query. If it were enabled, you wouldn't even be allowed to start the app. Unfortunately there is no solution, but I think the question only comes up at the first start.

  5. “Is there actually a “list” on the computer where the programs are listed/saved that were smuggled around Gatekeeper by the workaround?”

    You could click the apple in the top left -> About This Mac -> More Info -> System Report. Then on the left under “Software/Programs” sort the list by clicking on the column “Received from”.

    You should now see all programs sorted by "Apple", "Verified Developers" and "Unknown".

    Hope that helps.

    1. Hi Max,

      If the password is requested in the terminal, the entries are usually not displayed there. So no characters or symbols appear for the password you entered. The entries are still registered. So you can type in your password and press Enter. Then it should continue.

      Best regards
      John

Post a comment

Your e-mail address will not be published. Required fields are marked with * marked

In the Sir Apfelot Blog you will find advice, instructions and reviews on Apple products such as the iPhone, iPad, Apple Watch, AirPods, iMac, Mac Pro, Mac Mini and Mac Studio.